CVE-2019-6590

EUVD-2019-16149
On BIG-IP LTM 13.0.0 to 13.0.1 and 12.1.0 to 12.1.3.6, under certain conditions, the TMM may consume excessive resources when processing SSL Session ID Persistence traffic.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Affected Products (NVD)
VendorProductVersion
f5big-ip_local_traffic_manager
11.5.1 ≤
𝑥
≤ 11.6.3
f5big-ip_local_traffic_manager
12.1.0 ≤
𝑥
≤ 12.1.3.6
f5big-ip_local_traffic_manager
13.0.0 ≤
𝑥
≤ 13.0.1
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/106942
https://support.f5.com/csp/article/K55101404
http://www.securityfocus.com/bid/106942
https://support.f5.com/csp/article/K55101404